New Member

Question

cant access internet using Fortigate VM

Forum|Forum|3 years ago
May 3, 2023
4 replies
11644 views

I have deployed Fortigate-VM and I am able to access the GUI.

The firewall can access the internet but as a users I can reach the firewall but no internet connection.

I would like some help if there is any configuration needed on the ESXI or the switch where its connected.

1 port connected for LAN and another port connected for WAN.

FortiGate

srajeswaran

Staff

Can you share "get router info routing-table details 8.8.8.8", and check the forward traffic logs under "logs and report" to see if there are any logs related to your source IP?

afaroukAuthor

New Member

for simplicity i removed sd-wan and only created 1 wan port and made changes to the routing and policy for that WAN only

srajeswaran

Staff

From the user machine, are you able to ping the fortigate IP -10.10.100.254 ?

afaroukAuthor

New Member

yes i have access to the firewall i am on the same subnet

srajeswaran

Staff

Can you collect below outfrom firewall after initiating a ping from the user machine towards 8.8.8.8

diagnose sniffer packet any "host 8.8.8.8" 4

vbandha

Staff

Did you set up the LAN subnet as a VLAN?

On the second screenshot, I see LAN having VLAN ID of 100, but on fortigate you don't have the vlan configured on the LAN interface.

Can you also run these commands on fortigate:
exec ping-options source 10.10.100.254
exec ping 8.8.8.8

afaroukAuthor

New Member

WAN ports has VLAN ID as well, its for the VM to tag it on the switch to communicate with the modem which has the same VLAN ID

am not getting reply with the interface as a source

vbandha

Staff

Can you run the sniffer in a different CLI window and then do the ping commands again. So run this command:
diagnose sniffer packet any 'host 10.10.100.254 and icmp' 4 0 a

and after that run these in a new cli window:
exec ping-options source 10.10.100.254
exec ping 8.8.8.8

Alhaddar

New Member

I Have Same issue now , is there any solution for this issue ?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded